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1 Introduction 

This proposes a reveed interface to Flare to allow the Navisphere Agent to manage Rare over TCP/IP. 

The original Alpine Phase 11 Ethernet Service Port Functional Spec'rficati on proposed usrig the existing 
serial line protocol over a TCP connection. However upon further consideration this approach was 
found unappealing because of synchronization problems with the current serial line protocol and the 
number of serial line specific manipulation calls made by the Agent. 

A better interface would be to pass SCSI requests over TCP. This would standardize the management 
interface on the SCSI CDBs already defined and treat TCP/IP as an alternative transport to the Fibre 
Channel interface. 

This means it will be possible to Issue arbitrary SCSI requests such as read or write over the network. 
In general read or write requests will not be issued over the network as Fibre is the optimal interiace for 
that. However there doesnl seem to be any reason to prohibit doing exactly that. It might be a useful 
to be able to generate read or write requests for testing. It might also be nice to have a back door to 
access LUN data for test verification or backup. It doesnl make sense to use it as the primary data 
storage data path but the ability will t>e there for completeness. 
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2 Overview 

The goal of this new interface is to treat each TCP connection from a Navisphere Agent to Flare as a 
separate SCSI initiator. The Navisphere Agent can send multiple SCSI requests sent over the TCP 
connection and those requests will be processed according to SCSI rules for reordering and 
parallelism. Replies can come back in any order. 

Completely modeling SCSI over Fibre on TCP would create some inefficiencies so the interface will be 
somewhat modified. To completely model SCSI over Fibre, the Agent would send a request to Flare 
and then Rare would request transfer of the data buffer associated with the request. This would mean 
an extra round trip message for Flare to read a data buffer. Rather than having Flare send requests to 
retrieve a data buffer from the Agent, the Agent will always send the data buffers that will be read by 
Flare as part of the request. For data buffers that are written by Flare, Flare will return these to the 
Agent as soon as processing has completed the buffer. When frie Agent sends a request, TCP flow 
control may prevent the Agent write operation from completing Immediately. If the Agent has several 
requests outstanding at one time, it should always keep accepting data (have a separate thread ahvays 
doing a read or equivalent) so Rare can return completed requests to free resources to process 
incoming requests. 

Having the Navisphere Agent send the data buffer with requests in which Rare will read the data buffer 
means the buffer will be transferred unnecessarily if the SCSI request has an error. Errors are expected 
to be infrequent and the saving of an extra round trip message should more than offset this. 

3 References 

[1] CLARiiON Disk-Array Licensed Internal Code Specification, Full -Fibre Storage Systems, 
Drawing No: 009-001854-04 

[2] Storage Centric Setup Command Interface Rev 1 .3 
Chariie Hopkins 5/7/99 

4 Environment 
4.1 Security 

Flare will only service connections from the Navisphere agent if the IP address of the agent matches 
one of a configured set of addresses that Flare will tmsL The Flare administrator must configure the list 
of addresses as part of Flare management Each address will have an associated mask to allow the 
administrator the ability to match an entire subnet with a single entry. 

The Rare network Interfece only offers a modest level of security. Administrators can telnet to Flare 
where access is granted to anyone presenting the proper password. The password will be passed 
over the network in clear text so anyone on the network with a sndTer can obtain the password. If 
someone obtains the Flare password, they can access Rare and unbind LUNs and zero disks thus 
destroying data. Sites that are concerned about security should only connect Rare to a physically 
secure LAN segment trusted for management use and protected from other access (the site should 
use a firewall or take equivalent precautions to limit network connectivity). 

Because the address from which Flare will accept connections must be specified in advance, the hosts 
running the Navisphere Agent must use fixed IP address; they can not use DHCP or some other 
dynamic mechanism of obtaining an address. This limitation results from the use of static addresses to 
grant access. If this proves to be a serious problem, well consider adding a more flexible mechanism 
in the future. 
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4.2 Network Performance 

If Flare is connected to a network with a lot of broadcast traffic, that traffic could cause a performance 
impact on Flare. Flare should only be connected to a network where the level of broadcast traffic is 
known to be low enough to not adversely impact the performance of hosts on that network. 

4^ Encoding 

The SCSI requests wOI be encoded using CTLD as described in the Storage Centric specp], SCSI 
requests will be encoded with tags. The fields will be structured similarty to fibre requests and will 
indude a Request Id to allow the Agent to match replies with requests. Data buffers transferred from 
Flare to the Agent will be returned independent of, and may proceed the status of the request ttiat 
generated the data. 

The CTLD encoding must always use the Binary encoding. All CDBs and data buffers wilt be in 
network byte order just as they would be constructed for the Fibre interface. Request Ids must be 4 
bytes long. 

5 Messages 

5.1 SCSI Request 

This message sends a SCSI request fi^om tiie Agent to Flare. 

Tag = TAG_NET_SCSLREQUEST 
Sub Tag = TAG_NET_REQUEST_ID 
Sub Tag = TAG_NET_SCSLCMND_PAYLOAD 
Sub Tag = TAG_NET_BUFFER 


The TAG_NET_REQUESTJD is uninterpreted by FLARE and will be returned in the reply message. 

The TAG_NET_SCSLCMND_PAYLOAD contains a FCP CMND Payload as described in the 
CLARIION Fibre Spec[1]. 

The TAG_NET__BUFFER is a conditional Sub Tag; if Rare will read the data buffer from the Agent for 
the CDS, this provides that data. Jf Flare will return a data buffer to the Agent, this Sub Tag should not 
be present. 

5^ SCSI Reply 

This message retums the status of a SCSI request from Rare to the Agent 

Tag = TAG_NET_SCSI_REPLY 
Sub Tag = TAG,NET_REQUEST_[D 
Sub Tag = TAG_NET_SCSLRSP_PAYLOAD 


The TAG_NET_REQUESTJD retums the Request Id of the request. 

The TAG_NET_SCSLRSP_PAYLOAD retums a FCP RSP Payload as described in the Clariion Rbre 
spec[1]. 
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5.3 SCSI Buffer 

This message returns the data generated by Flare when processing a SCSI request. It may proceed or 
follow the SCSI status for the request. 

Tag ^ TAG_NET.SCSI_RESULT_BUFFER ' 

Sub Tag = TAG_NET_R£QUET_ID " 

Sub Tag = TAG_NET_SCSLBUFFER 


The TAG_NET_REQUESTJD returns the Request Id of the request that generated this reply buffer. 
The TAG_NET_SCSI_BUFFER returns the data buffer generated by Flare. 
5.4 Option Request 

This message sends a TCP specific request from the Agent to Rare. At this tinr^e there are no options 
defined. At some time in the future the TCP interlace may support network specific tjehavbr such as 
having Rare generate Alerts for some conditions. All the Sub -tags other than the Request Id tag of this 
will be ignored in the initial version of this interface. 

Tag = TAG_NET_OPTION_REQUEST 

Sub Tag = TAG_NET_REQUETJD 


The TAG_NET_REQUESTJD specifies a Request Id tag that Rare will return with the reply. 

This option request can be sent at any time. In the future if the interface is changed and the old 
Interface no longer supported, the option request maybe required to be the first message to allow Rare 
and the Agent to agree to use the new interfece; an appropriate Tag will be defined with the new 
interface. 

Other tags maybe added in the future as options are defined. 
5.5 Option Reply 

This message returns the result of an Option Request from Flare to the Agent. At this time the 
response will always be unsupported request At some time in the future this request may be defined 
and the reply will return a status of zero to indicate successful request. 

Tag = TAG_NET_OPTION_REPLY 


Sub Tag = TAG_NET_REQUETJD 


Sub Tag = TAG_NET_OPTION_STATUS 


The TAG_NET_FIEQUETJD returns the Id of the request that generated this reply. 

The TAG_NET_OPTIONS_STATUS returns a value of 1 indicating request not supported. 

This message will also be sent by Flare to inform the Agent of problems with the connection. If Flare 
receives a connection and finds it can not sen/ice the connection. Flare w\\\ send an Option Reply 
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message with a status indicating why it will not sen^^ice the connection. Thus if the Agent were to send 
an Option Request as the first request to Flare, a reply with a failure status will Indicate why the 
connection is being dosed. 

The following values are defined for the status: 

0 Request accepted 

1 Request not supported (or tag in request not supported) 

2 Connection not accepted, authorization failure 

3 Connection not accepted, too many connections 

6 Connection management 

Rare will listen for TCP connections on port 2918. It will accept all connections. If Flare already has 
more than the implementation maximum (at least 8), it will send a TAG_NET_OPTION_REPLY with a 
status value of 3 indicating that the maximum number of connections has been exceeded and then 
dose the connection. If Flare will not accept the connection because the agent's IP address is not in 
tiie list of allowed hosts. Rare will send a TAG_NET_OPTION_REPLY with a status value of 2. 

When reading connections. Rare will implement a timeout. If Flare ever waits more than 100 seconds 
to finish reading a complete message, it will dose the connection. The timeout does not start untB the 
first byte of the message has been received; thus an idle connection can remain indefinitely. Rare wfll 
enable TCP keepalives on the connection to cleanup connection from hosts that are no longer 
accessible. 

If Rare ever finds an Invalid length on a Request Id. or SCSI CDB. it will assume the Agent and Flare 
are out of sync due to some problem and it will dose the connection. 

Appendix A: TAG LIST 


TBD 

End of Document 
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